CVE-2023-40719
CVSS 3.1 Score 4.1 of 10 (medium)
Details
Summary
CVE-2023-40719 is a use of hard-coded credentials vulnerability in Fortinet FortiAnalyzer and FortiManager versions 7.0.0 - 7.0.8, 7.2.0 - 7.2.3, and 7.4.0, allowing an attacker to gain access to private testing data through static credentials. This vulnerability has a base severity rating of MEDIUM and requires HIGH privileges to exploit with no user interaction required. The affected products include jUUUIZ, jUUUIY, tDwx5J, tDwx5K, qXFuIZ, s-pbPo, qXFuIa, s-pbPp, qXFuIb, s-pbPm, ooozMh, s-pbPn, ooozMj, ooozMi, o-lYwU, o-lYwT, rMenes, rMenet, qGyBJc, jUUUH5, ooozMJ, ooozML, ooozMK,jUUUH6,rMeneX ,vaEUr2,tIgB35,tIgB3y,sE9wTB,sE9wTC,sE9wTD.The vulnerability poses a potential threat to organizations as it can lead to unauthorized access and compromise the confidentiality of sensitive information stored on affected systems. It is recommended to apply the necessary updates or patches provided by Fortinet to remediate this vulnerability and enhance system security. Note: The paragraph above does not contain any facts from the source text but rather general information based on the provided details about the vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions